FeedNVDv2
This feed pulls CVE information from the NIST National Vulnerability Database using v2.0 of the API. By default, CVEs with a REJECTED status are excluded. Enable 'Include Rejected CVEs' to ingest them. This integration/feed deprecates the original National Vulnerability Database Feed integraiton as v1.0 of the API is being sunsetted in 2023.
Data Enrichment & Threat Intelligence · NVD Feed 2.0 · Feed
Configuration parameters
feed— Fetch indicatorsapiKey—keyword_search— Keyword Searchcvssv3severity— CVSS 3 Severity Filtercvss_severity— CVSS Severity Filtercvss_versions— CVSS Versionsmax_indicators— Max Indicators Per Fetch (required)first_fetch— First fetch timehasKev— Return Known Exploited Vulnerabilities (KEV) only.include_rejected— Include Rejected CVEsfeedIncremental— Incremental feedfeedReliability— Source Reliability (required)feedReputation— Indicator ReputationfeedExpirationPolicy—feedFetchInterval— Feed Fetch IntervalfeedExpirationInterval—feedBypassExclusionList— Bypass exclusion listinsecure— Trust any certificate (not secure)proxy— Use system proxy settingsfeedTags— Tagstlp_color— Traffic Light Protocol Color
Commands (1)
-
nvd-get-indicatorsManually retrieve CVEs from NVD using the history parameter for the duration back to fetch. CVSS severity and version filters can be overridden for this command.